Backport: support for 802.11w Management Frame Protection
Add support for IEEE802.11w Management Frame Protection options into the wireless config. Mention in the help text that the full version of wpad/hostapd is needed. Currently supported in LEDE by ath9k and ath10k, mwlwifi and mt76. Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi> (cherry picked from commit4ddb6b2816) (cherry picked from commit4d31f7ca30)
This commit is contained in:
Hannu Nyman
parent
8dec864828
commit
d1d3b8612e
1 changed files with 38 additions and 0 deletions
|
|
@ -1123,6 +1123,44 @@ if hwtype == "atheros" or hwtype == "mac80211" or hwtype == "prism2" then
|
||||||
password.password = true
|
password.password = true
|
||||||
end
|
end
|
||||||
|
|
||||||
|
-- ieee802.11w options
|
||||||
|
if hwtype == "mac80211" then
|
||||||
|
ieee80211w = s:taboption("encryption", ListValue, "ieee80211w",
|
||||||
|
translate("802.11w Management Frame Protection"),
|
||||||
|
translate("Requires the 'full' version of wpad/hostapd " ..
|
||||||
|
"and support from the wifi driver <br>(as of Feb 2017: " ..
|
||||||
|
"ath9k and ath10k, in LEDE also mwlwifi and mt76)"))
|
||||||
|
ieee80211w.default = "0"
|
||||||
|
ieee80211w.rmempty = true
|
||||||
|
ieee80211w:value("0", translate("Disabled (default)"))
|
||||||
|
ieee80211w:value("1", translate("Optional"))
|
||||||
|
ieee80211w:value("2", translate("Required"))
|
||||||
|
ieee80211w:depends({mode="ap", encryption="wpa2"})
|
||||||
|
ieee80211w:depends({mode="ap-wds", encryption="wpa2"})
|
||||||
|
ieee80211w:depends({mode="ap", encryption="psk2"})
|
||||||
|
ieee80211w:depends({mode="ap", encryption="psk-mixed"})
|
||||||
|
ieee80211w:depends({mode="ap-wds", encryption="psk2"})
|
||||||
|
ieee80211w:depends({mode="ap-wds", encryption="psk-mixed"})
|
||||||
|
|
||||||
|
max_timeout = s:taboption("encryption", Value, "ieee80211w_max_timeout",
|
||||||
|
translate("802.11w maximum timeout"),
|
||||||
|
translate("802.11w Association SA Query maximum timeout"))
|
||||||
|
max_timeout:depends({ieee80211w="1"})
|
||||||
|
max_timeout:depends({ieee80211w="2"})
|
||||||
|
max_timeout.datatype = "uinteger"
|
||||||
|
max_timeout.placeholder = "1000"
|
||||||
|
max_timeout.rmempty = true
|
||||||
|
|
||||||
|
retry_timeout = s:taboption("encryption", Value, "ieee80211w_retry_timeout",
|
||||||
|
translate("802.11w retry timeout"),
|
||||||
|
translate("802.11w Association SA Query retry timeout"))
|
||||||
|
retry_timeout:depends({ieee80211w="1"})
|
||||||
|
retry_timeout:depends({ieee80211w="2"})
|
||||||
|
retry_timeout.datatype = "uinteger"
|
||||||
|
retry_timeout.placeholder = "201"
|
||||||
|
retry_timeout.rmempty = true
|
||||||
|
end
|
||||||
|
|
||||||
if hwtype == "atheros" or hwtype == "mac80211" or hwtype == "prism2" then
|
if hwtype == "atheros" or hwtype == "mac80211" or hwtype == "prism2" then
|
||||||
local wpasupplicant = fs.access("/usr/sbin/wpa_supplicant")
|
local wpasupplicant = fs.access("/usr/sbin/wpa_supplicant")
|
||||||
local hostcli = fs.access("/usr/sbin/hostapd_cli")
|
local hostcli = fs.access("/usr/sbin/hostapd_cli")
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue